If you do not encode special characters in web forms, you run the risk of breaking the search query or the ability to insert malicious code into the database. Hackers can infiltrate your website, potentially stealing confidential data or deleting the database. I am not going to go into the technical reasons why this happens, but in most cases it is a very easy fix. read more...